Staffing Shortage Makes Vulnerabilities Worse
For enterprise IT groups, responding to the volume of new vulnerabilities is growing more difficult – compounded by a chronic lack of …
What You Need to Know About the RunC Container Escape Vulnerability
A serious vulnerability was disclosed in runC, a runtime that underpins Docker and other Linux container engines. If left unpatched, it …
Google paid out $3.4m in bug bounties last year
A 19-year-old researcher from Uruguay; a restaurant owner from Cluj, Romania; and a Cambridge professor: these are just three of the 317 …
New Dirty Sock Vulnerability Allows Hackers to Gain Root Access on Linux systems
The researcher discovered a new privilege escalation vulnerability called Dirty Sock on Ubuntu Linux default installation lets attacker …
Snapd Flaw Lets Attackers Gain Root Access On Linux Systems
Ubuntu and some other Linux distributions suffer from a severe privilege escalation vulnerability that could allow a local attacker or a …
Another flaw found in macOS Mojave’s privacy protection
Ever since Apple announced enhanced privacy protection for macOS Mojave 10.14 last September, a dedicated band of researchers has been …
Ep. 019 – Android holes, iOS screengrabbing and USB poo [PODCAST]
The Naked Security podcast pokes a stick into the latest critical security bugs in Android, investigates the dubious art of iOS screenshots …
Security firm beats Adobe by patching reader flaw first
Adobe has patched a flaw that enabled attackers to slurp a user’s network authentication details – but not before someone else patched …
Snapd flaw gives attackers root access on Linux systems
A vulnerability affecting Snapd – a package installed by default in Ubuntu and used by other Linux distributions such as Debian, …
Vulnerability Threat Control Paradigm and CIA Triads – Computer Security
Vulnerability Threat Control Paradigm Vulnerability Threat Control Paradigm is a framework to protect your computer so that you can protect …
Microsoft Excel .SLK Payload Delivery
## # This module requires Metasploit: https://metasploit.com/download # Current …
Microsoft Released Security Updates & Fixed More than 70 Flaws Along with Active Zero-Day Browser Bug
Microsoft released new security updates for February under patch Tuesday with the fixes for more than 70 vulnerabilities that affected …
75 Vulnerabilities Fixed with Adobe Security Updates for February 2019
Adobe has released security updates that cover updates for Adobe Acrobat and Reader, ColdFusion and Creative Cloud Desktop Application. The …
Exploit kits: winter 2019 review
Active malvertising campaigns in December and the new year have kept exploit kit activity from hibernating in winter 2019. We mostly …
WordPress plugin patches flaw that gave hackers potential access to 40,000 websites
A new vulnerability in a popular WordPress plugin could allow outsiders who exploit the flaw to take control of a website, according to new …
Linux container bug could eat your server from the inside – patch now!
If you’re a fan of retro gaming, you’ve probably used an emulator, which is a software program that runs on computer hardware of one …
Critical zero-day vulnerabilities hit Lifesize video conferencing products
Lifesize is an audio and video telecommunication firm based in the United States with offices in Africa, Europe, and the Middle East. Its …
Researchers Warn of Malicious Container Escape Vulnerability
A new vulnerability in the core runc container code could potentially enable a malicious container to get access to the host operating …